Profiles search

Louanne C.

Cybersecurity /Information Security Risk Director
Fort Lauderdale, FL, United States

Details

Education: MASTERS

MANAGEMENT INFORMATION SYSTEMS

Nova Southeastern University

2011 : 2013

Bachelors

Finance

Long Island University, C.W. Post Campus
Experience: ● Responsible and accountable for assisting with the strategic and tactical deliverables of the information security GRC program, which encompasses evaluation of the current state and re-engineering to the future states.

● Evaluation of the current controls to ensure the associated risk are addressed appropriately and effectiveness are maintained by control and process owners.

● Execute and deliver associated milestones for large and complex information security control related projects.

● Provide subject matter expertise and drive enhancements for one or more security GRC programs.

● Provide governance and oversight for the Bank's security compliance programs (GLBA, FFIEC, FISMA,) and related processes necessary to meet the Bank's obligations.

● Provide assistance with the management and development of corporate information security policies.

● Provide Information Security subject matter expertise in various risk assessments and remediation efforts.

● Provide oversight or support for key information security governance, risk, and compliance initiatives

2020 : Present

Private Company

Information Security Risk & Compliance Management

• Responsible for providing Information Security consulting services to the Business and IT Units for the Latin America.

• Manage the Risk Assessment process by engaging the various business and technology units to appropriately address the risk associated with the Latam Regional applications and business process. • Coordinate and appraise the technical assessment for the SDLC projects Regional Latam Applications.

•Participate and assist the technology unit in ensuring compliance with MFA/SA, Key Management and VTMs.

• Provide direction to the business and technology in development of corrective action plan and risk exception process for issues associated with Information Security.

• Promote security awareness of current policies and address as needed any emerging I.S trends within the employee population.

2014 : 2020

Private Company Financial

Regional Business and Technical Information Manager

• Responsible for Information Security oversight of the B2B Lending division to ensure compliance with Information Security policies and standards.

• Performed Self Audits and reviewed assessments of all InfoSec programs such as : IT Risk, IAM, SDLC, and Asset Classification.

•Defined, drive and implemented corrective action plans to remediate any deficiencies identified during InfoSec Self Audit reviews.

• Communicate status to senior management and stakeholders through summary reports, minutes, issue / defect and risk tracking.

2013 : 2014

Private Company - Financial

Project Manager II - Business Information Security Manager

• Managed the evaluation of the operational risk and controls within the Residential Mortgage Business Units to provide assurance of their effectiveness. • Conducted process observations, self-audits, test key controls and reviewed control reports in order to ensure operational compliance & proactively identify any gaps. • Collaborated with the business partners to proactively identify gaps in business unit operational environment and developed corrective action plans to address the deficiencies.

2011 : 2013

Private Company - Financial

Internal Controls and Operational Risk Mgr

• Oversaw and audited highly complex Residential Mortgage Origination loans for the five C’s to provide assurance of compliance with the company policies and government regulations.

• Provided detailed written feedback and reports on the loan review findings to senior management.

• Performed analysis of current process and recommended improvements to senior management.

• Audited the Defaulted Mortgage Loan portfolios to assess the level of quality and adherence to corporate, regulatory, and investor policies and guidelines at time of the initial underwrite.

• Addressed the audit findings with the appropriate channel managers and recommended corrective action plans.

• Identified audit findings that may impact business decisions and communicate with management.

2009 : 2011

Private Company - Financial

Credit N Compliance Risk Mgmt.
Company: Private Company
Years of Experience: 16

Skills

Analytical Skills, Auditing, Banking, Business Process Improvement, Credit, Executive Management, Finance, Financial Risk, Financial Services, Identity and Access Managment, Informaiton Security Governance, Information Security, Information Security Management, Information Security Risk Management, Information Technology, Insider Threats, IT Risk Management, IT Strategy, Leadership, Loans, Management, Mortgage Lending, Operational Risk, Operational Risk Management, Payment Card Industry Data Security Standard (PCI DSS), Project Management, Project Management Office (PMO), Regulatory Compliance, Retail Banking, Risk Assessment, Risk Management, Secuirty Awareness Audit, Secure System Development Lifecycle Managment, Security, Security Incident & Event Management, Software Development Life Cycle (SDLC), Team Building, Third Party Vendor Management, Vulnerability Management

About

Dynamic Cyber security Professional knowledgeable and experienced with 18 plus years in the Financial Industry working with the top Fortune 500 banks. Professional experience includes: IT Security Risk Management, Audit, Asset Security, Identity & Access Management, IT Governance, Security Assessment/Testing, Security Operations, Software Development, Security Awareness, Operational Risk and Credit Risk. Proven track record of successful management of Cyber security Programs to achieve green level metrics status. Profound interpersonal communication skills to excel at collaborating and interfacing with various Global Teams in both business and technology at all organizational levels.